Podatność CVE-2024-8531


Publikacja: 2024-10-11

Opis:
CWE-347: Improper Verification of Cryptographic Signature vulnerability exists that could
compromise the Data Center Expert software when an upgrade bundle is manipulated to
include arbitrary bash scripts that are executed as root.

Typ:

CWE-347

(Improper Verification of Cryptographic Signature)

 Referencje:
https://download.schneider-electric.com/files?p_Doc_Ref=SEVD-2024-282-01&p_enDocType=Security+and+Safety+Notice&p_File_Name=SEVD-2024-282-01.pdf

Copyright 2024, cxsecurity.com

 

Back to Top